Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

64 matches found

OSV
OSVadded 2026/05/28 11:19 p.m.7 views

ECHO-C1E1-4615-F038

Bulletin has no description...

9.8CVSS5.7AI score0.00546EPSS
Exploits0References1
CVE
CVEadded 2026/03/23 11:38 p.m.4 views

CVE-2026-4615

The CVE-2026-4615 entry details a SQL injection in SourceCodester Online Catering Reservation 1.0, triggered by manipulating the rcode parameter in the /search.php function. The vulnerability is exploitable remotely, and public exploits are available. Affected component is an unknown function wit...

7.5CVSS7AI score0.00318EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/03/23 12:0 a.m.5 views

Siemens APE1808 Improper Neutralization of Script in Attributes in a Web Page (CVE-2025-4615)

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. This plugin only works with Tenable.ot. Please visit...

7.2CVSS5.9AI score0.00721EPSS
Exploits2References2
RedhatCVE
RedhatCVEadded 2025/10/10 7:17 p.m.7 views

CVE-2025-4615

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk posed by this issue is significantly minimized when CLI...

7CVSS7.1AI score0.00721EPSS
Exploits2References1
Circl
Circladded 2025/10/08 4:19 p.m.5 views

CVE-2025-4615

creationtimestamp| type| source ---|---|--- 2025-10-08 16:19:33+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115339452257265838 2025-10-08 19:03:24+00:00| seen| https://bsky.app/profile/ripjyr.bsky.social/post/3m2pdffgsgf2k 2025-11-11 23:03:21+00:00| seen|...

7.2CVSS4.8AI score0.00721EPSS
Exploits2References4
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2014-4615

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The notifier middleware in OpenStack PyCADF 0.5.0 and earlier, Telemetry Ceilometer 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before...

5CVSS5.9AI score0.02774EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/05 8:17 p.m.9 views

CVE-2022-4615

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.2...

8.3CVSS6AI score0.00651EPSS
Exploits1References1
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.181 views

Canon Wireless Printer Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Canon Wireless Printer Denial Of Service', 'Description' = %q The HTTP management interface on several models of Canon Wireless printers allows f...

5CVSS7AI score0.15641EPSS
Exploits3
Patchstack
Patchstackadded 2024/06/13 12:0 a.m.9 views

WordPress Elespare Plugin <= 3.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Elespare Type Plugin Vulnerable versions = 3.1.2 Fixed in 3.2.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4615 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 21ccc5e387f4 Credits stealthcopter Required privileg...

6.4CVSS5.8AI score0.00411EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2023/09/14 7:16 p.m.9 views

CVE-2018-4615

Rejected reason: This candidate is unused by its CNA...

6.6AI score
Exploits0
Circl
Circladded 2023/09/04 2:16 p.m.1 views

CVE-2023-4615

creationtimestamp| type| source ---|---|--- 2023-09-04 14:16:33+00:00| seen| https://t.me/cibsecurity/69773...

7.5CVSS7.3AI score0.01251EPSS
Exploits0References1
OSV
OSVadded 2023/09/04 11:15 a.m.3 views

CVE-2023-4615

This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG LED Assistant. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /api/download/updateFile endpoint. The issue results from the lack of prope...

7.5CVSS5.7AI score0.01251EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/09/04 10:39 a.m.20 views

CVE-2023-4615 updateFile Directory Path Traversal Allows Unauthenticated Arbitrary File Read Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG LED Assistant. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /api/download/updateFile endpoint. The issue results from the lack of prope...

7.5CVSS7.5AI score0.01251EPSS
Exploits0References2
CVE
CVEadded 2023/09/04 10:39 a.m.2502 views

CVE-2023-4615

CVE-2023-4615 affects LG LED Assistant. Root cause: missing validation of a user-supplied path in /api/download/updateFile, enabling directory traversal. Impact: unauthenticated remote disclosure of sensitive information in the current user context over the network. Affected product: LG LED Assis...

7.5CVSS7.3AI score0.01251EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2023/03/23 5:15 p.m.2 views

CVE-2023-20027

A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly VFR feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper reassembly of large packe...

8.6CVSS7.3AI score0.0098EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2023/03/22 11:0 p.m.1 views

CVE-2023-20027

A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly VFR feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper reassembly of large packe...

8.6CVSS6AI score0.0098EPSS
Exploits0References2
Circl
Circladded 2022/12/19 10:24 p.m.2 views

CVE-2022-4615

creationtimestamp| type| source ---|---|--- 2022-12-19 22:24:57+00:00| seen| https://t.me/cibsecurity/54919...

8.3CVSS6.9AI score0.00651EPSS
Exploits1References1
NVD
NVDadded 2022/12/19 8:15 p.m.19 views

CVE-2022-4615

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.2...

8.3CVSS0.00651EPSS
Exploits1References2
Cvelist
Cvelistadded 2022/12/19 12:0 a.m.20 views

CVE-2022-4615 Cross-site Scripting (XSS) - Reflected in openemr/openemr

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.2...

8.3CVSS6.5AI score0.00651EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2022/12/19 12:0 a.m.7 views

CVE-2022-4615 Cross-site Scripting (XSS) - Reflected in openemr/openemr

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.2...

8.3CVSS6.1AI score0.00651EPSS
Exploits1References2
Rows per page
Query Builder